CN101488111A - Identification authentication method and system - Google Patents
Identification authentication method and system Download PDFInfo
- Publication number
- CN101488111A CN101488111A CNA2009100773140A CN200910077314A CN101488111A CN 101488111 A CN101488111 A CN 101488111A CN A2009100773140 A CNA2009100773140 A CN A2009100773140A CN 200910077314 A CN200910077314 A CN 200910077314A CN 101488111 A CN101488111 A CN 101488111A
- Authority
- CN
- China
- Prior art keywords
- session
- storage device
- portable storage
- identity authentication
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 45
- 230000007246 mechanism Effects 0.000 claims abstract description 61
- 230000014759 maintenance of location Effects 0.000 claims 1
- 230000004044 response Effects 0.000 description 4
- 230000008901 benefit Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000004891 communication Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000008569 process Effects 0.000 description 1
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses an identity authentication method. Firstly, a portable storage device loads a session key generation mechanism identical to itself and a decrypting mechanism corresponding to an own encrypting mechanism onto a terminal; then, the portable storage device uses an own session key to encrypt a self-produced session ticket; the terminal generates the session key according to the session key generation mechanism identical to the portable storage device, ensures that the own session key decrypts the encrypted session ticket from the portable storage device and returns the session ticket obtained after the decryption to the portable storage device; subsequently, the portable storage device can compare the received session ticket with the session ticket produced by itself, so as to realize the identity authentication. At the same time, the invention also discloses an identity authentication system. The method and the system can improve the safety of the identity authentication between the terminal and the portable storage device.
Description
Technical Field
The invention relates to the field of information security, in particular to an identity authentication method and system.
Background
When a terminal (e.g., a PC, a mobile phone, etc.) accesses a portable storage device (e.g., a smart card, a memory card, etc.), the portable storage device needs to authenticate the identity of the accessed terminal, and fig. 1 is a flowchart of an identity authentication method in the prior art. As shown in fig. 1, the method of identity authentication in the prior art includes the following steps:
step 101, when the terminal detects the portable storage device, the portable storage device is powered on, and the portable storage device sends an identity authentication request to the terminal requesting access.
And step 102, after receiving an identity authentication request sent by the portable storage device, the terminal prompts a user to input a Personal Identification Number (PIN) through a human-computer interaction interface, and the user inputs the PIN according to the prompt of the human-computer interaction interface.
And 103, the terminal returns an identity authentication request response to the portable storage device, wherein the identity authentication request response carries the PIN input by the user in a plaintext mode.
Step 104, after receiving the PIN input by the user, the portable storage device compares the PIN input by the user with a PIN pre-stored by the portable storage device, and if the PIN input by the user and the PIN pre-stored by the portable storage device are consistent, the identity authentication is passed; otherwise, the identity authentication fails.
Step 105, the portable storage device returns an identity authentication result to the terminal, and if the identity authentication is passed, the terminal can access the portable storage device; otherwise, the terminal cannot access.
In the existing identity authentication method, because the terminal sends the PIN input by the user to the portable storage device in a plaintext manner for identity authentication, the PIN sent by the terminal is easily stolen or intercepted by an illegal user, so that the illegal user may also obtain the authority to access the portable storage device, and thus the security of the existing identity authentication method is not high.
Disclosure of Invention
In view of the above, the present invention is directed to an identity authentication method for improving security of identity authentication between a terminal and a portable storage device.
Another object of the present invention is to provide an identity authentication system to improve the security of identity authentication between a terminal and a portable storage device.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
an identity authentication system, the system comprising: a terminal, a portable storage device,
the portable storage device includes: an identity authentication module, a security processing module loading unit, wherein,
the identity authentication module encrypts a session bill generated by the identity authentication module by using a session key of the identity authentication module;
the safety processing module loading unit loads a safety processing module in the terminal;
the security processing module carries a session key generation mechanism which is the same as that of the identity authentication module, and generates respective session keys according to the same session key generation mechanism as that of the identity authentication module; the security processing module also carries a decryption mechanism corresponding to the encryption mechanism in the identity authentication module, decrypts the encrypted session bill from the identity authentication module by using the session key of the security processing module, and returns the session bill obtained after decryption to the identity authentication module;
and the identity authentication module is also used for comparing the received session ticket with the session ticket generated by the identity authentication module.
The identity authentication module comprises: the system comprises a first session key generation unit, a first session bill generation unit, an encryption unit and an identity authentication unit; the secure processing module includes: the device comprises an identity information input and storage unit, a second session key generation unit and a decryption unit; wherein,
the first session key generation unit is used for generating a first session key by taking the identity information of the portable storage device as a key seed;
the first session bill generating unit is used for generating a first session bill and sending the first session bill to the encryption unit and the identity authentication unit;
the encryption unit is used for encrypting the first session ticket by using the first session key and sending the encrypted first session ticket to the decryption unit;
the identity information input and storage unit is used for inputting identity information by a user and storing the identity information input by the user;
the second session key generation unit is used for generating a second session key according to a generation mechanism of the first session key by taking the identity information input by the user as a key seed;
the decryption unit is used for decrypting the encrypted first session ticket from the encryption unit according to a decryption mechanism corresponding to the encryption mechanism by using the second session key and sending the decrypted second session ticket to the identity authentication unit;
the identity authentication unit is used for comparing whether the second session bill from the decryption unit is consistent with the first session bill from the first session bill generation unit or not, and if so, the identity authentication of the terminal is passed; otherwise, the identity authentication fails.
The terminal is a PC (personal computer), a mobile phone or an ATM (automatic teller machine);
the portable storage device is a smart card, a memory card or a USBKey.
An ISO7816 interface protocol, a universal memory card interface protocol, a USB interface protocol, or a wireless interface protocol is adopted between the terminal and the portable memory device.
The identity information is a Personal Identification Number (PIN) or biological characteristic information.
The identity information input and storage unit comprises a soft keyboard.
The first session ticket and the second session ticket are generated according to the current session time.
A method of identity authentication, the method comprising the steps of:
the portable storage device loads a session key generation mechanism which is the same as the portable storage device and a decryption mechanism which corresponds to an encryption mechanism of the portable storage device to the terminal;
the portable storage device encrypts a self-generated session ticket by using a self-session key;
the terminal generates a session key according to a session key generation mechanism which is the same as that of the portable storage device, decrypts the encrypted session ticket from the portable storage device by using the session key of the terminal, and then returns the session ticket obtained after decryption to the portable storage device;
the portable storage device compares the received session ticket with the session ticket generated by itself.
The method for generating respective session keys by the terminal and the portable storage device according to the same session key generation mechanism comprises the following steps: the portable storage equipment generates a first session key by taking the identity information of the portable storage equipment as a key seed, and the terminal generates a second session key by taking the identity information input by the user as the key seed according to a generation mechanism of the first session key;
the method for encrypting the session ticket generated by the portable storage device by using the session key of the portable storage device comprises the following steps: the portable storage device generates a first session ticket and encrypts the first session ticket using a first session key;
the method for the terminal to decrypt the encrypted session ticket from the portable storage device by using the session key of the terminal comprises the following steps: the terminal decrypts the encrypted first session ticket from the portable storage device according to a decryption mechanism corresponding to the encryption mechanism by using the second session key;
the method for comparing the received conversation bill with the self-generated conversation bill by the portable storage device comprises the following steps: the portable storage device compares whether the second session bill from the terminal is consistent with the first session bill generated by the portable storage device, and if so, the identity authentication of the terminal is passed; otherwise, the identity authentication fails.
The terminal is a PC (personal computer), a mobile phone or an ATM (automatic teller machine);
the portable storage device is a smart card, a memory card or a USBKey.
The terminal and the portable storage device are connected through an ISO7816 interface, a universal memory card interface, a USB interface or a wireless interface.
The identity information is a Personal Identification Number (PIN) or biological characteristic information.
The method for the user to enter the identity information comprises the following steps: the user enters identity information using a soft keyboard.
The first session ticket and the second session ticket are generated according to the current session time.
According to the technical scheme, the portable storage device loads the session key generation mechanism which is the same as the portable storage device and the decryption mechanism which corresponds to the encryption mechanism of the portable storage device to the terminal; then, the portable storage device encrypts the self-generated session ticket by using the self-session key; correspondingly, the terminal generates a session key according to a session key generation mechanism which is the same as that of the portable storage device, decrypts the encrypted session ticket from the portable storage device by using the session key of the terminal, and returns the session ticket obtained after decryption to the portable storage device; thereafter, the portable storage device can compare the received session ticket with the session ticket generated by the portable storage device to realize identity authentication. Therefore, the PIN input by the user is not directly transmitted between the terminal and the portable storage device, so that identity information such as the PIN is prevented from being stolen by an illegal user, and the security of identity authentication between the terminal and the portable storage device is improved.
Drawings
FIG. 1 is a flow chart of a prior art method of identity authentication;
FIG. 2 is a block diagram of an identity authentication system provided in the present invention;
FIG. 3 is a flow chart of a method for authenticating an identity according to the present invention;
fig. 4 is a flowchart of an embodiment of an identity authentication method according to the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention is further described in detail below with reference to the accompanying drawings and examples.
Fig. 2 is a structural diagram of an identity authentication system provided in the present invention, and as shown in fig. 2, the identity authentication system includes: terminal 201, portable storage device 202.
The terminal 201 includes at least: a secure processing module 2011 and a second interface unit 2015; the portable storage device 202 includes at least: a security processing module loading unit 2021, an identity authentication module 2022, and a first interface unit 2027.
The security processing module loading unit 2021 loads the security processing module 2011 to the terminal 201 through the first interface unit 2027 and the second interface unit 2015, and the security processing module 2011 carries the same session key generation mechanism as the identity authentication module 2022 and a decryption mechanism corresponding to the encryption mechanism in the identity authentication module; the security processing module 2011 and the identity authentication module 2022 generate respective session keys according to the same session key generation mechanism; the identity authentication module 2022 encrypts the session ticket generated by itself using its own session key, the security processing module 2011 decrypts the encrypted session ticket from the identity authentication module 2022 using its own session key, and returns the decrypted session ticket to the identity authentication module 2022 through the first interface unit 2027 and the second interface unit 2015; the authentication module 2022 compares the received session ticket with the self-generated session ticket.
The secure processing module 2011 includes at least: identity information recording and saving unit 2012, second session key generating unit 2013, decryption unit 2014; the identity authentication module 2022 includes at least: a first session key generation unit 2023, a first session ticket generation unit 2024, an encryption unit 2025, and an identity authentication unit 2026.
The first session key generation unit 2023 is configured to generate a first session key using the identity information of the portable storage device 202 as a key seed; a first session ticket generating unit 2024 for generating and transmitting the first session ticket to the encrypting unit 2025 and the identity authenticating unit 2026; an encrypting unit 2025 for encrypting the first session ticket using the first session key, transmitting the encrypted first session ticket to the decrypting unit 2014 through the first interfacing unit 2027 and the second interfacing unit 2015; an identity information input and storage unit 2012, configured to input identity information by a user and store the identity information input by the user; a second session key generation unit 2013, configured to generate a second session key according to a generation mechanism of the first session key by using the identity information entered by the user as a key seed; a decryption unit 2014, configured to decrypt the first session ticket from the encryption unit 2025 according to a decryption mechanism corresponding to the encryption mechanism by using the second session key, and send the decrypted second session ticket to the identity authentication unit 2026 through the first interface unit 2027 and the second interface unit 2015; an identity authentication unit 2026 for comparing whether the second session ticket from the decryption unit 2014 and the first session ticket from the first session ticket generating unit 2024 are identical, and if they are identical, the identity authentication of the terminal 201 is passed; otherwise, the identity authentication fails.
In addition, it should be noted that, after the identity authentication is finished, the security processing module 2011 for the current identity authentication is automatically deleted from the terminal 201, and when the next identity authentication is performed, a new security processing module is loaded to the terminal 201.
In practical applications, the terminal 201 may be a PC, a mobile phone, an ATM, etc., and accordingly, the first interface unit 2027 and the second interface unit 2015 connecting the terminal 201 and the portable storage device 202 may adopt an ISO7816 interface protocol, a universal memory card interface protocol, a USB interface protocol, and if a wireless communication module (not shown) is built in the terminal 201 and the portable storage device 202, the first interface unit 2027 and the second interface unit 2015 connecting the terminal 201 and the portable storage device 202 may adopt a wireless interface protocol.
In practical applications, the identity information used for identity authentication may be a PIN, and may also be biometric information, such as fingerprint information, iris information, and the like. When the identity information is a PIN, the authentication entry and storage unit 2012 may include a soft keyboard for the user to input the PIN.
Based on the identity authentication system, fig. 3 is a flowchart of an identity authentication method provided by the present invention, and as shown in fig. 3, the identity authentication method includes the following steps:
in step 301, the portable storage device loads the same session key generation mechanism as itself and a decryption mechanism corresponding to its encryption mechanism to the terminal.
An embodiment of the identity authentication method provided by the present invention is described in detail below.
Fig. 4 is a flowchart of an embodiment of an identity authentication method provided in the present invention, as shown in fig. 4, the identity authentication method includes the following steps:
in step 401, the portable storage device loads the same session key generation mechanism as itself and a decryption mechanism corresponding to its encryption mechanism to the terminal.
When the terminal detects the portable storage device, the portable storage device is powered on, the method can be according to the method of the prior art, and then the portable storage device immediately loads the session key generation mechanism which is the same as the portable storage device itself and the decryption mechanism which corresponds to the encryption mechanism of the portable storage device itself to the terminal.
Step 402, the user inputs the PIN, and the terminal stores the PIN input by the user.
Preferably, in this embodiment, the user enters the PIN using a soft keyboard. The benefits of using a soft keyboard are: when a user inputs a PIN each time, the positions of all characters in the soft keyboard are different, and if a Trojan program exists in the terminal, the Trojan program cannot steal the PIN by recording the sequence of the characters knocked by the user.
In step 403, the terminal sends an identity authentication request to the portable storage device.
The portable storage device generates a first session ticket T and a first session key K with the portable storage device's own PIN as a key seed, step 404.
In the prior art, the session ticket is usually in the form of a string of random numbers, and preferably, in this embodiment, the first session ticket T can be generated according to the current session time, and the method for generating the first session key K is the same as the method for generating the key in the prior art, such as hash operation, xor operation, and the like.
In step 405, the portable storage device encrypts the first session ticket T using the first session key K to obtain an encrypted first session ticket e (T).
The encryption method is usually the encryption method in the prior art.
Step 406, the portable storage device sends an identity authentication request response to the terminal, where the identity authentication request response carries the encrypted first session ticket e (t) obtained in step 405.
Step 407, the security authentication module in the terminal generates a second session key K' according to the generation mechanism of the first session key, with the PIN input by the user in step 402 as a key seed.
In step 408, the terminal decrypts the received encrypted first session ticket e (T) according to the decryption mechanism corresponding to the encryption mechanism by using the second session key K 'generated in step 406 to obtain a second session ticket T'.
In step 409, the terminal sends the second session ticket T' to the portable storage device.
In step 410, the portable storage device verifies whether the received second session ticket T' is identical to the first session ticket T generated in step 404, and if so, the identity authentication of the terminal is passed.
Step 411, the portable storage device returns an identity authentication result to the terminal, and if the identity authentication is passed, the terminal is allowed to access the portable storage device; otherwise, entering the authentication process of the next period or refusing the access of the terminal to the portable storage device.
This flow ends by this point.
In summary, the above description is only a preferred embodiment of the present invention, and is not intended to limit the scope of the present invention. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.
Claims (14)
1. An identity authentication system, the system comprising: a terminal, a portable storage device, characterized in that,
the portable storage device includes: an identity authentication module, a security processing module loading unit, wherein,
the identity authentication module encrypts a session bill generated by the identity authentication module by using a session key of the identity authentication module;
the safety processing module loading unit loads a safety processing module in the terminal;
the security processing module carries a session key generation mechanism which is the same as that of the identity authentication module, and generates respective session keys according to the same session key generation mechanism as that of the identity authentication module; the security processing module also carries a decryption mechanism corresponding to the encryption mechanism in the identity authentication module, decrypts the encrypted session bill from the identity authentication module by using the session key of the security processing module, and returns the session bill obtained after decryption to the identity authentication module;
and the identity authentication module is also used for comparing the received session ticket with the session ticket generated by the identity authentication module.
2. The system of claim 1, wherein the identity authentication module comprises: the system comprises a first session key generation unit, a first session bill generation unit, an encryption unit and an identity authentication unit; the secure processing module includes: the device comprises an identity information input and storage unit, a second session key generation unit and a decryption unit; wherein,
the first session key generation unit is used for generating a first session key by taking the identity information of the portable storage device as a key seed;
the first session bill generating unit is used for generating a first session bill and sending the first session bill to the encryption unit and the identity authentication unit;
the encryption unit is used for encrypting the first session ticket by using the first session key and sending the encrypted first session ticket to the decryption unit;
the identity information input and storage unit is used for inputting identity information by a user and storing the identity information input by the user;
the second session key generation unit is used for generating a second session key according to a generation mechanism of the first session key by taking the identity information input by the user as a key seed;
the decryption unit is used for decrypting the encrypted first session ticket from the encryption unit according to a decryption mechanism corresponding to the encryption mechanism by using the second session key and sending the decrypted second session ticket to the identity authentication unit;
the identity authentication unit is used for comparing whether the second session bill from the decryption unit is consistent with the first session bill from the first session bill generation unit or not, and if so, the identity authentication of the terminal is passed; otherwise, the identity authentication fails.
3. The system according to claim 1 or 2,
the terminal is a PC (personal computer), a mobile phone or an ATM (automatic teller machine);
the portable storage device is a smart card, a memory card or a USBKey.
4. The system according to claim 2, wherein an ISO7816 interface protocol, a universal memory card interface protocol, a USB interface protocol, or a wireless interface protocol is adopted between the terminal and the portable storage device.
5. The system of claim 2, wherein the identity information is a Personal Identification Number (PIN) or biometric information.
6. The system of claim 2, wherein the identity information entry and retention unit comprises a soft keyboard.
7. The system of claim 2, wherein the first session ticket and the second session ticket are generated based on a current session time.
8. An identity authentication method, characterized in that the method comprises the steps of:
the portable storage device loads a session key generation mechanism which is the same as the portable storage device and a decryption mechanism which corresponds to an encryption mechanism of the portable storage device to the terminal;
the portable storage device encrypts a self-generated session ticket by using a self-session key;
the terminal generates a session key according to a session key generation mechanism which is the same as that of the portable storage device, decrypts the encrypted session ticket from the portable storage device by using the session key of the terminal, and then returns the session ticket obtained after decryption to the portable storage device;
the portable storage device compares the received session ticket with the session ticket generated by itself.
9. The method of claim 8,
the method for generating respective session keys by the terminal and the portable storage device according to the same session key generation mechanism comprises the following steps: the portable storage equipment generates a first session key by taking the identity information of the portable storage equipment as a key seed, and the terminal generates a second session key by taking the identity information input by the user as the key seed according to a generation mechanism of the first session key;
the method for encrypting the session ticket generated by the portable storage device by using the session key of the portable storage device comprises the following steps: the portable storage device generates a first session ticket and encrypts the first session ticket using a first session key;
the method for the terminal to decrypt the encrypted session ticket from the portable storage device by using the session key of the terminal comprises the following steps: the terminal decrypts the encrypted first session ticket from the portable storage device according to a decryption mechanism corresponding to the encryption mechanism by using the second session key;
the method for comparing the received conversation bill with the self-generated conversation bill by the portable storage device comprises the following steps: the portable storage device compares whether the second session bill from the terminal is consistent with the first session bill generated by the portable storage device, and if so, the identity authentication of the terminal is passed; otherwise, the identity authentication fails.
10. The method according to claim 8 or 9, characterized in that the terminal is a PC, or a mobile phone, or an automatic teller machine ATM;
the portable storage device is a smart card, a memory card or a USBKey.
11. The method according to claim 9, wherein the terminal and the portable storage device are connected through an ISO7816 interface, or a universal memory card interface, or a USB interface, or a wireless interface.
12. The method of claim 9, wherein the identity information is a Personal Identification Number (PIN) or biometric information.
13. The method of claim 9, wherein the method for the user to enter identity information is: the user enters identity information using a soft keyboard.
14. The method of claim 9, wherein the first session ticket and the second session ticket are generated based on a current session time.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2009100773140A CN101488111A (en) | 2009-02-17 | 2009-02-17 | Identification authentication method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2009100773140A CN101488111A (en) | 2009-02-17 | 2009-02-17 | Identification authentication method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101488111A true CN101488111A (en) | 2009-07-22 |
Family
ID=40891011
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2009100773140A Pending CN101488111A (en) | 2009-02-17 | 2009-02-17 | Identification authentication method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101488111A (en) |
Cited By (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102004909A (en) * | 2010-11-30 | 2011-04-06 | 方正国际软件有限公司 | Method and system for processing identity information |
| CN104065648A (en) * | 2014-06-05 | 2014-09-24 | 天地融科技股份有限公司 | Data processing method of voice communication |
| CN105491073A (en) * | 2016-01-21 | 2016-04-13 | 腾讯科技(深圳)有限公司 | Data downloading method, device and system |
| CN105790946A (en) * | 2014-12-22 | 2016-07-20 | 中国移动通信集团公司 | Method and system for building data channel and related devices |
| CN106302354A (en) * | 2015-06-05 | 2017-01-04 | 北京壹人壹本信息科技有限公司 | A kind of identity identifying method and device |
| CN106788972A (en) * | 2016-12-16 | 2017-05-31 | 成都理工大学 | A kind of train ticket self-help ticket-buying fetching system based on block chain authentication |
| WO2018045917A1 (en) * | 2016-09-09 | 2018-03-15 | 天地融科技股份有限公司 | Authorization system, method, and card |
| WO2018045916A1 (en) * | 2016-09-09 | 2018-03-15 | 天地融科技股份有限公司 | Authorization method, system, and card |
| CN108243156A (en) * | 2016-12-26 | 2018-07-03 | 航天信息股份有限公司 | A kind of method and system that network authentication is carried out based on fingerprint key |
| CN108509787A (en) * | 2018-03-14 | 2018-09-07 | 深圳市中易通安全芯科技有限公司 | A kind of program authentication method |
| CN113010875A (en) * | 2021-03-17 | 2021-06-22 | 紫光国芯微电子股份有限公司 | Information isolation method, memory card and mobile terminal |
| WO2022022057A1 (en) * | 2020-07-30 | 2022-02-03 | 北京金山云网络技术有限公司 | Session ticket processing method and apparatus, electronic device, and computer readable storage medium |
-
2009
- 2009-02-17 CN CNA2009100773140A patent/CN101488111A/en active Pending
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102004909A (en) * | 2010-11-30 | 2011-04-06 | 方正国际软件有限公司 | Method and system for processing identity information |
| CN104065648B (en) * | 2014-06-05 | 2017-07-21 | 天地融科技股份有限公司 | A kind of data processing method of voice call |
| CN104065648A (en) * | 2014-06-05 | 2014-09-24 | 天地融科技股份有限公司 | Data processing method of voice communication |
| CN105790946B (en) * | 2014-12-22 | 2020-05-12 | 中国移动通信集团公司 | Method, system and related equipment for establishing data channel |
| CN105790946A (en) * | 2014-12-22 | 2016-07-20 | 中国移动通信集团公司 | Method and system for building data channel and related devices |
| CN106302354A (en) * | 2015-06-05 | 2017-01-04 | 北京壹人壹本信息科技有限公司 | A kind of identity identifying method and device |
| CN105491073A (en) * | 2016-01-21 | 2016-04-13 | 腾讯科技(深圳)有限公司 | Data downloading method, device and system |
| WO2018045917A1 (en) * | 2016-09-09 | 2018-03-15 | 天地融科技股份有限公司 | Authorization system, method, and card |
| WO2018045916A1 (en) * | 2016-09-09 | 2018-03-15 | 天地融科技股份有限公司 | Authorization method, system, and card |
| CN106788972A (en) * | 2016-12-16 | 2017-05-31 | 成都理工大学 | A kind of train ticket self-help ticket-buying fetching system based on block chain authentication |
| CN106788972B (en) * | 2016-12-16 | 2020-03-10 | 成都理工大学 | Train ticket self-service ticket buying and taking system based on block chain identity authentication |
| CN108243156A (en) * | 2016-12-26 | 2018-07-03 | 航天信息股份有限公司 | A kind of method and system that network authentication is carried out based on fingerprint key |
| CN108509787A (en) * | 2018-03-14 | 2018-09-07 | 深圳市中易通安全芯科技有限公司 | A kind of program authentication method |
| CN108509787B (en) * | 2018-03-14 | 2022-06-10 | 深圳市中易通安全芯科技有限公司 | Program authentication method |
| WO2022022057A1 (en) * | 2020-07-30 | 2022-02-03 | 北京金山云网络技术有限公司 | Session ticket processing method and apparatus, electronic device, and computer readable storage medium |
| CN113010875A (en) * | 2021-03-17 | 2021-06-22 | 紫光国芯微电子股份有限公司 | Information isolation method, memory card and mobile terminal |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101488111A (en) | Identification authentication method and system | |
| US7735132B2 (en) | System and method for encrypted smart card PIN entry | |
| US8295484B2 (en) | System and method for securing data from a remote input device | |
| US9800562B2 (en) | Credential recovery | |
| KR101800737B1 (en) | Control method of smart device for self-identification, recording medium for performing the method | |
| EP1866873B1 (en) | Method, system, personal security device and computer program product for cryptographically secured biometric authentication | |
| US20100138667A1 (en) | Authentication using stored biometric data | |
| CN107864124B (en) | Terminal information security protection method, terminal and Bluetooth lock | |
| CN107733652B (en) | Unlocking method and system for shared vehicle and vehicle lock | |
| CN101621794A (en) | Method for realizing safe authentication of wireless application service system | |
| US20120124378A1 (en) | Method for personal identity authentication utilizing a personal cryptographic device | |
| CN101944216A (en) | Two-factor online transaction safety authentication method and system | |
| CN108768941B (en) | Method and device for remotely unlocking safety equipment | |
| EP2590101A2 (en) | Authentication using stored biometric data | |
| US20140025946A1 (en) | Audio-security storage apparatus and method for managing certificate using the same | |
| KR20130031435A (en) | Method and apparatus for generating and managing of encryption key portable terminal | |
| WO2014166193A1 (en) | Application encryption processing method, apparatus, and terminal | |
| KR20180082703A (en) | Key management method and apparatus for software authenticator | |
| CN115529591A (en) | Token-based authentication method, device, equipment and storage medium | |
| CN107085899A (en) | The identity identifying method at finance self-help end and finance self-help end | |
| CN105184116A (en) | Intelligent equipment software encryption and personal authentication device and method | |
| JP2006323691A (en) | Authentication device, registration device, registration method and authentication method | |
| KR20140007628A (en) | Method for mobile banking of account transfer using security confirmation processing | |
| CN113162766B (en) | Key management method and system for key component | |
| KR101298216B1 (en) | Authentication system and method using multiple category |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Open date: 20090722 |